HackDig : Dig high-quality web security articles for hackers

Fraudsters Exploited Lax Security at Equifax’s TALX Payroll Division

Identity thieves who specialize in tax refund fraud had big help this past tax year from Equifax, one of the nation’s largest consumer data brokers and credit bureaus. The trouble stems from TALX, an Equifax subsidiary that provides online payroll, HR and tax services. Equifax says crooks were able to reset the 4-digit PIN given to customer employees a
Publish At:2017-05-19 01:10 | Read:7065 | Comments:0 | Tags:Other avivah litan Equifax Gartner Inc. ICSI identity theft

Payments Giant Verifone Investigating Breach

Credit and debit card payments giant Verifone [NYSE: PAY] is investigating a breach of its internal computer networks that appears to have impacted a number of companies running its point-of-sale solutions, according to sources. Verifone says the extent of the breach was limited to its corporate network and that its payment services network was not impacted.
Publish At:2017-03-07 20:00 | Read:5644 | Comments:0 | Tags:Other Andy Payment Anunak avivah litan Carbanak Foregenix Ga

Stolen Passwords Fuel Cardless ATM Fraud

Some financial institutions are now offering so-called “cardless ATM” transactions that allow customers to withdraw cash using nothing more than their mobile phones. But as the following story illustrates, this new technology also creates an avenue for thieves to quickly and quietly convert stolen customer bank account usernames and passwords int
Publish At:2017-01-06 07:55 | Read:6171 | Comments:0 | Tags:Other ATM fraud avivah litan cardless ATM Chase bank Fox28 g

Visa Delays Chip Deadline for Pumps To 2020

Visa this week delayed by three years a deadline for fuel station owners to install payment terminals at the pump that are capable of handling more secure chip-based cards. Experts say the new deadline — extended from 2017 — comes amid a huge spike in fuel pump skimming, and means fraudsters will have another three years to fleece banks and their
Publish At:2016-12-02 15:15 | Read:3671 | Comments:0 | Tags:Other ATM avivah litan EMV Gartner Inc. pump skimmers Visa U

Visa Alert and Update on the Oracle Breach

Credit card industry giant Visa on Friday issued a security alert warning companies using point-of-sale devices made by Oracle‘s MICROS retail unit to double-check the machines for malicious software or unusual network activity, and to change passwords on the devices. Visa also published a list of Internet addresses that may have been involved in the O
Publish At:2016-08-13 21:00 | Read:6337 | Comments:0 | Tags:A Little Sunshine Latest Warnings The Coming Storm alex hold

Cybercrime Overtakes Traditional Crime in UK

In a notable sign of the times, cybercrime has now surpassed all other forms of crime in the United Kingdom, the nation’s National Crime Agency (NCA) warned in a new report. It remains unclear how closely the rest of the world tracks the U.K.’s experience, but the report reminds readers that the problem is likely far worse than the numbers sugges
Publish At:2016-07-15 22:00 | Read:3981 | Comments:0 | Tags:A Little Sunshine The Coming Storm avivah litan Cyber Crime

Rise of Darknet Stokes Fear of The Insider

With the proliferation of shadowy black markets on the so-called “darknet” — hidden crime bazaars that can only be accessed through special software that obscures one’s true location online — it has never been easier for disgruntled employees to harm their current or former employer. At least, this is the fear driving a growing
Publish At:2016-06-23 01:30 | Read:5423 | Comments:0 | Tags:A Little Sunshine The Coming Storm avivah litan darknet dark

Bidding for Breaches, Redefining Targeted Attacks

A growing community of private and highly-vetted cybercrime forums is redefining the very meaning of “targeted attacks.” These bid-and-ask forums match crooks who are looking for access to specific data, resources or systems within major corporations with hired muscle who are up to the task or who already have access to those resources. A good ex
Publish At:2015-09-27 11:50 | Read:4901 | Comments:0 | Tags:A Little Sunshine Web Fraud 2.0 AshleyMadison hack avivah li

Breach at Winery Card Processor Missing Link

Missing Link Networks Inc., a credit card processor and point-of-sale vendor that serves a number of wineries in Northern California and elsewhere, disclosed today that a breach of its networks exposed card data for transactions it processed in the month of April 2015. Earlier this week, I heard from a source at one of Sonoma, Calif.’s fancier wineries
Publish At:2015-06-11 07:35 | Read:5052 | Comments:0 | Tags:Other avivah litan eCellar breach gartner Harbor Touch Missi

‘Revolution’ Crimeware & EMV Replay Attacks

In October 2014, KrebsOnSecurity examined a novel “replay” attack that sought to exploit implementation weaknesses at U.S. financial institutions that were in the process of transitioning to more secure chip-based credit and debit cards. Today’s post looks at one service offered in the cybercrime underground to help thieves perpetrate this
Publish At:2015-04-02 00:05 | Read:4907 | Comments:0 | Tags:Other Web Fraud 2.0 avivah litan chip cards cryptogram EMV g

Apple Pay: Bridging Online and Big Box Fraud

Lost amid the media firestorm these past few weeks about fraudsters turning to Apple Pay is this stark and rather unsettling reality: Apple Pay makes it possible for cyber thieves to buy high-priced merchandise from brick-and-mortar stores using stolen credit and debit card numbers that were heretofore only useful for online fraud. To understand what’s
Publish At:2015-03-11 15:30 | Read:4470 | Comments:0 | Tags:Latest Warnings The Coming Storm Web Fraud 2.0 Apple Pay avi

Banks: Card Thieves Hit White Lodging Again

For the second time in a year, multiple financial institutions are complaining of fraud on customer credit and debit cards that were all recently used at a string of Marriott properties run by hotel franchise firm White Lodging Services Corporation. White Lodging says it is investigating, but that so far it has found no signs of a new breach. In January 31,
Publish At:2015-02-04 03:50 | Read:3813 | Comments:0 | Tags:Data Breaches avivah litan Gartner Inc. Jeff Flaherty Marrio

Banks Get Green Light in Target Breach Suits

A Minnesota District Court ruling this week related to the 2013 Target data breach has opened the door for banks to pursue damages from retailers victimized by a data breach.Judge Paul A. Magnuson ruled that Target was negligent in ignoring and, in some cases, turning off security features that the court said would have stopped the 2013 holiday shopping seas
Publish At:2014-12-05 22:35 | Read:3920 | Comments:0 | Tags:Compliance Data Breaches Hacks Malware Privacy avivah litan

Avoiding Data Breaches with Context Aware Behavioral Analytics

RESTON, VA – Security, it turns out, is all about layers, where if one layer fails, there are secondary and tertiary and a long line of backup defenses. This is neither new nor revolutionary. It’s why castles had moats, drawbridges and parapets; it’s also why prisons have cells, walls and gates.When you move from the physical to the cybersp
Publish At:2014-12-03 16:35 | Read:4410 | Comments:0 | Tags:Data Breaches Web Security avivah litan data breach gartner

Chip & PIN vs. Chip & Signature

The Obama administration recently issued an executive order requiring that federal agencies migrate to more secure chip-and-PIN based credit cards for all federal employees that are issued payment cards. The move marks a departure from the far more prevalent “chip-and-signature” standard, an approach that has been overwhelmingly adopted by a majo
Publish At:2014-10-31 02:20 | Read:4763 | Comments:0 | Tags:A Little Sunshine Security Tools The Coming Storm Aite Group


Tag Cloud